This privacy policy (hereinafter - the Policy) is accepted and is valid in the Limited Liability Company "TIM" (hereinafter - the Company), ОГРН 1190280004200, ИНН / КПП 0270407132/027001001, legal / actual address - 453700, Russia, Republic of Bashkortostan, Uchaly , st. Marshal Zhukov, 16, contacts – post@geotim.ru, тел. +7 (347) 225-87-09.
This Policy provides a list of personal data collected by the Company about the subject of personal data, methods of storing, processing and transferring information containing personal data of the subject of personal data, the rights and obligations of subjects of personal data, principles, purposes and conditions for processing personal data, as well as measures taken by the Company protection of personal data.
This Policy has been adopted in order to ensure the protection and confidentiality of personal data provided by users. This Policy defines the principles, procedure for collecting, storing, processing, destroying personal data provided by the user, as well as the subject's rights guaranteed by the Company in relation to the provided personal data. The company recommends that users familiarize themselves in detail with the provisions of this Policy.
The site of the company – https://geotim.ru.
Personal Information – any information relating directly or indirectly to a specific or identifiable individual (subject of personal data). In particular, personal data means the surname, name, patronymic of an individual, the name of the position held, the name of the organization in which the individual works / whose representative is the individual, the contact phone number, e-mail address, number / link to the user in messenger / social network, IP address, MAC address, browser name and version, information stored in cookies.
Personal data processing – any action (operation) or a set of actions (operations) performed by the Company and / or third parties involved by the Company, using automation tools or without using such tools with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating , change), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, destruction of personal data.
Cross-border data transfer – transfer of personal data to the territory of a foreign state to a foreign state authority, a foreign individual or a foreign legal entity.
Consent – a freely expressed, conscious, specific and unambiguous, unambiguously identifiable statement of an individual-subject of personal data on the consent to the processing, storage and transfer by the Company and / or third parties involved by the Company of information containing the personal data of such an individual.
Cookies data – small alphanumeric files stored in the browser of the device through which the user visits the Company's website.
Personal data subject (user) – an individual who provides the Company with information containing the personal data of such an individual. For the purposes of this Policy, the following persons are the subject of personal data - users of the Company's website:
The company obtains information about users from the following sources:
The company does not provide guarantees regarding the confidentiality and protection measures taken in relation to personal data by the third parties specified in this section when receiving personal data from such third parties. The Company shall not be liable in the event of harm to personal data subjects as a result of actions / inaction of the third parties specified in this section, except for cases when the harm (including as a result of the dissemination of information containing personal data) occurred through the fault of the Company. To obtain information about the confidentiality and protection measures taken by third parties specified in this clause in relation to the provided personal data, the Company recommends that users directly contact such third parties.
The legal basis for the processing of the personal data of the subject by the Company is:
The Company assures and guarantees that the local regulations of the Company and other internal documents of the Company, directly or indirectly related to the processing of personal data, comply with the current norms of the applicable law. The Company constantly monitors the norms of applicable legislation and, in the event of changes, immediately responds to such changes by making changes and / or additions to this Policy and / or local regulations and other internal documents directly or indirectly related to the processing of personal data.
The Company collects the following categories of personal data about users of the Company's website:
The user is not obliged to provide the Company with his personal data to visit the Company's website. The provision of personal data by the user is voluntary.
The company does not collect information related to special categories of personal data. In particular, the Company does not collect the following information:
The company does not collect, process, store and distribute personal data of persons under the age of 18 without providing the voluntary, explicit and unequivocal consent of the legal representatives of such individuals.
The purposes of personal data processing by the Company are:
The company processes personal data on a legal, fair and transparent basis. The company processes personal data in accordance with the requirements of the current Russian legislation and applicable international treaties. The basis for the processing of personal data by the Company is the consent of the subject of personal data to the processing of personal data. In the event that the subject of personal data revokes or changes his consent to the processing of personal data, the Company stops or accordingly changes the limits of processing of personal data.
The company processes personal data in the composition and volume necessary to achieve the goals and fulfill the tasks in connection with which the processing of personal data is carried out. The company collects and processes personal data to the extent necessary for collection purposes. The company does not collect personal data in excess. The company guarantees the timely destruction of the received personal data when achieving the goals in connection with which the collection of personal data was carried out.
The company processes personal data in accordance with the initially set and specifically defined goals for which consent was obtained from the subject of personal data to process personal data. The company processes personal data exclusively for the purposes specified by the subject of personal data in consent. The company does not use the personal data provided by the subject for other purposes, including its own purposes, not specified in the consent provided by the subject of personal data. The company assures and guarantees that the purposes of personal data processing comply with the requirements of the current legislation of the Russian Federation and do not violate the rights and legitimate interests of third parties.
When processing personal data, the Company ensures the relevance, accuracy and sufficiency of personal data. The company takes all necessary measures to clarify incomplete and / or inaccurate personal data. If it is impossible to clarify the available personal data and / or to replenish such data, the Company ensures their timely deletion.
The company ensures the confidentiality of personal data. The company takes all necessary and sufficient technical, organizational and other measures to protect personal data, including but not limited to the adoption of internal privacy policies, restricting access to information containing personal data, including restricting access to personal data and providing such access only to certain categories of the Company's employees.
The company ensures the security of personal data. The company stores personal data on tangible media in compliance with the requirements of technical and organizational security, ensuring the safety of personal data in the form and volume in which such data was provided, and excluding unauthorized access, including the destruction and / or modification of existing personal data. data, except for cases when such destruction and / or changes are made on the basis of the request of the subject of personal data in accordance with section 13 of this Policy. The Company does not disclose or provide personal data to third parties, including partners and / or affiliates of the Company, without the explicitly expressed voluntary consent of the subject of personal data. Consent to the disclosure of personal data is not required if such disclosure is carried out at the request of state authorities in the cases and in the manner provided for by applicable law. In any case, the Company transfers personal data in compliance with technical measures to protect personal data and does not use open communication channels, as well as unprotected data transmission systems. The Company has the right to entrust the processing of personal data to a third party, subject to obtaining the appropriate consent from the subject of personal data, while the Company guarantees that such a third party will take measures in respect of the processed personal data that ensure a security standard not lower than that provided for in this Policy.
The company ensures the inadmissibility of combining databases containing personal data, the processing of which is carried out for different and / or incompatible purposes. The company stores personal data processed using automation tools and without using such tools, separately from each other by placing the following on separate media. The company carries out separate storage of personal data that was provided for various purposes, as well as personal data that belong to different categories.
The company carries out segregated storage by placing the following types of personal data on separate media:
Guided by the above principle, the Company provides a separate storage of personal data, the collection of which was carried out for various purposes, thereby ensuring the inadmissibility of using the provided personal data for purposes other than those specified in the consent of the subject of personal data.
The company is responsible, provided for by the current Russian legislation, for compliance with and adherence to these principles when processing personal data.
The company processes personal data manually and through the use of automation tools. In particular, the Company collects, records, systematizes, accumulates, stores, clarifies (updates and changes existing data), retrieves, uses, transfers (transfers personal data through secure communication channels and data transmission systems, provides access), depersonalization, blocking, deletion, destruction of personal data in accordance with the requirements of applicable law.
The Company processes personal data each time a user visits the Company's website, uses the Company's services and contacts the Company.
The company processes personal data on the territory of the Russian Federation. The company does not carry out cross-border transfers of personal data.
The company stores personal data for a period until the achievement of the goal for the implementation of which the personal data was provided, or until the moment when, based on the circumstances, the purpose for the implementation of which the personal data was provided is objectively unattainable. After the expiration of the period specified in this section, personal data are subject to destruction.
The company stores personal data outside the time limits provided for in this section, in cases directly provided for by applicable law.
The company has the right to provide access to personal data and transfer personal data to the following categories of persons:
When concluding agreements on the basis of which the transfer of personal data is carried out with the persons indicated in this section, the Company requires these persons to take the necessary and sufficient measures of confidentiality and security in accordance with applicable law in relation to the transferred personal data. The company assures and guarantees that the use and processing of the transferred personal data is carried out by the specified persons solely for the purposes for which the consent of the subjects of personal data was provided. In the event that there is a need to use personal data for purposes other than those specified in the consent and / or in other ways, such use is allowed only subject to obtaining the voluntary, explicit and unambiguous consent of the subject of personal data.
When providing access to personal data and / or transferring personal data, the Company takes all necessary and sufficient technical and organizational measures to protect personal data in order to maintain confidentiality.
For more information about the organizational and / or technical security measures taken by the Company, used to ensure confidentiality and protection when providing access to personal data / transfer of personal data, the user has the right to contact post@geotim.ru.
12. Termination of processing of personal data
The company stops processing personal data in the following cases:
Upon termination of the processing of personal data, the Company immediately deletes copies of personal data contained on tangible media.
The company guarantees users the exercise of the following rights in relation to personal data provided to the Company by the subject of personal data:
The subject of personal data has the right at any time to contact the Company with a complaint about the actions and / or inactions of the Company, as well as the actions and / or inactions of subsidiaries and / or affiliates of the Company to whom the Company has transferred and / or provided access to the personal data of the subject in in accordance with section 11 of this Policy, in connection with the improper handling of the personal data of the subject. Inappropriate handling of personal data means the processing, storage and distribution of personal data in violation of the requirements of this Policy, the terms of the given consent of the subject of personal data, and the requirements of applicable law.
The subject of personal data has the right at any time to independently file a complaint with the competent authority and / or court against the actions of the Company and / or subsidiaries and affiliates of the Company to whom the Company has transferred and / or provided access to the personal data of the subject in accordance with section 11 of this Policy in if, through the fault of the Company, the personal data subject has been harmed as a result of the dissemination of personal data / unauthorized access to personal data.
To exercise the rights specified in this section and / or to send additional questions related to the exercise of the rights provided for in this section and other sections of this Policy, the user should contact post@geotim.ru.
To ensure the security of personal data, the Company takes necessary and sufficient organizational, technical and other measures to protect against unauthorized access to personal data and / or disclosure of personal data, as well as from damage, destruction in whole or in part, illegal copying and / or modification of personal data, blocking and other illegal actions with personal data, as a result of which harm may be caused to subjects of personal data, the Company, as well as the legitimate interests of third parties.
The company regularly monitors potential threats to personal data, including an assessment of the level of such threats, as well as an assessment of the potential damage that may be caused as a result. The company regularly updates existing policies and technical systems that ensure the protection of personal data, as well as train employees on information security and personal data protection.
In order to ensure the protection and preservation of the confidentiality of personal data, the Company adopts internal local regulations, in accordance with which a special regime is established with respect to personal data, implying limited access to personal data. The Company assures and guarantees that all employees of the Company are familiar with the internal local regulations governing personal data issues, and strictly follow the requirements of these acts when exercising their labor function.
The company regularly checks the health and functioning of information systems that ensure the security of personal data. If, in the course of such a check, the Company comes to the conclusion that there is a threat of distribution, destruction, blocking, unauthorized access to personal data, the Company immediately takes all necessary and sufficient measures to prevent such a threat, including by deleting personal data and copies of personal data available to the Company.
The Company uses cookies to ensure effective management of the Company's website and to provide the user with personalized services and products of the Company. Specifically, cookies contain the following information:
For more information on the terms of use of the data contained in cookies, please refer to the Personal Data Processing Policy.
The Company uses the Yandex.Metrica services on the website, which, on behalf of and in the interests of the Company, analyze how users use the Company's website in order to assess the effectiveness of the Company's website and further optimization settings. The user has the right to refuse to collect the information specified in this section by downloading and installing a plug-in for the browser of the device used by the user:
The Company has the right at any time, at its discretion and / or in cases provided for by applicable law, to make changes to this Privacy Policy. The company informs the user of changes to the provisions of this Policy 15 calendar days before the entry into force of such changes. If the user does not agree with the changes being made, the user has the right to send his disagreement to the e-mail address specified in section 11 of this Policy with the subsequent deletion of personal data in whole or in part. If the user has not sent his disagreement to the Company, it is considered that the user agrees with the changes made to this Policy.
If the user for any reason does not agree with the provisions of this Policy, the user is obliged to immediately leave the website of the Company and withdraw his personal data in the manner provided for in section 13 of this Policy. The continued use of the Company's website by the user means acceptance of the terms of this Policy. The user has the right at any time to contact the Company on all questions of interest related to the processing of personal data at post@geotim.ru, ph. +7 (347) 225-87-09.
This Policy may be translated into English. In the event of a disagreement between the Russian and English versions of this Policy, the Russian version shall prevail.